Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 22, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228511 6.8 警告 sitexs cms - SiteXS CMS の post.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-0371 2012-12-20 19:10 2009-01-30 Show GitHub Exploit DB Packet Storm
228512 9.3 危険 wesnoth - Wesnoth の Python AI モジュールにおけるサンドボックスをエスケープされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-0367 2012-12-20 19:10 2009-03-2 Show GitHub Exploit DB Packet Storm
228513 4.3 警告 wesnoth - Wesnoth の src/server/simple_wml.cpp におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-0366 2012-12-20 19:10 2009-03-12 Show GitHub Exploit DB Packet Storm
228514 9 危険 WING FTP software - WinFTP の WFTPSRV.exe におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-0351 2012-12-20 19:10 2009-01-29 Show GitHub Exploit DB Packet Storm
228515 7.2 危険 Niels Provos - x86_64 Linux 上で稼動している Niels Provos Systrace におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-0342 2012-12-20 19:10 2009-01-29 Show GitHub Exploit DB Packet Storm
228516 6.8 警告 Quirm - Simple PHP Newsletter におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-0340 2012-12-20 19:10 2009-01-29 Show GitHub Exploit DB Packet Storm
228517 7.8 危険 Quirm - ESPG の gallery/comment.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-0331 2012-12-20 19:10 2009-01-29 Show GitHub Exploit DB Packet Storm
228518 6.8 警告 wss-pro - SCMS の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-0330 2012-12-20 19:10 2009-01-29 Show GitHub Exploit DB Packet Storm
228519 5 警告 robs-projects - ROBS-PROJECTS Digital Sales IPN におけるユーザ資格情報を含むデータベースファイルをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-0328 2012-12-20 19:10 2009-01-29 Show GitHub Exploit DB Packet Storm
228520 7.5 危険 seraphimtech - Free Bible Search PHP Script の readbible.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-0327 2012-12-20 19:10 2009-01-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
195281 8.8 HIGH
Local 		qualcomm aqt1000_firmware
ar8031_firmware
ar8035_firmware
csra6620_firmware
csra6640_firmware
fsm10055_firmware
fsm10056_firmware
mdm9150_firmware
qca6390_firmware
qca6391_firmware<… 		Improper handling of permissions of a shared memory region can lead to memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industria… CWE-787
 Out-of-bounds Write 		CVE-2021-1942 2024-11-21 14:45 2022-04-1 Show GitHub Exploit DB Packet Storm
195282 9.8 CRITICAL
Network 		skolelinux
debian 		debian-edu-config
debian_linux 		It was discovered, that debian-edu-config, a set of configuration files used for the Debian Edu blend, before 2.12.16 configured insecure permissions for the user web shares (~/public_html), which co… CWE-276
Incorrect Default Permissions  		CVE-2021-20001 2024-11-21 14:45 2022-02-12 Show GitHub Exploit DB Packet Storm
195283 8.8 HIGH
Network 		sonicwall sonicos A Stack-based buffer overflow in the SonicOS SessionID HTTP response header allows a remote authenticated attacker to cause Denial of Service (DoS) and potentially results in code execution in the fi… CWE-787
 Out-of-bounds Write 		CVE-2021-20048 2024-11-21 14:45 2022-01-10 Show GitHub Exploit DB Packet Storm
195284 8.8 HIGH
Network 		sonicwall sonicos A Stack-based buffer overflow in the SonicOS HTTP Content-Length response header allows a remote authenticated attacker to cause Denial of Service (DoS) and potentially results in code execution in t… CWE-787
 Out-of-bounds Write 		CVE-2021-20046 2024-11-21 14:45 2022-01-10 Show GitHub Exploit DB Packet Storm
195285 6.5 MEDIUM
Local 		qualcomm qca6391_firmware
qcm6490_firmware
qcs6490_firmware
qrb5165_firmware
qrb5165n_firmware
sd690_5g_firmware
sd750g_firmware
sd765_firmware
sd765g_firmware
sd768g_firmware
sd… 		Improper handling of resource allocation in virtual machines can lead to information exposure in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile CWE-668
 Exposure of Resource to Wrong Sphere 		CVE-2021-1918 2024-11-21 14:45 2022-01-3 Show GitHub Exploit DB Packet Storm
195286 7.8 HIGH
Local 		qualcomm ar8031_firmware
ar8035_firmware
csra6620_firmware
csra6640_firmware
csrb31024_firmware
fsm10055_firmware
fsm10056_firmware
mdm9150_firmware
mdm9205_firmware
mdm9628_firmwar… 		Improper access control in TrustZone due to improper error handling while handling the signing key in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon… CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2021-1894 2024-11-21 14:45 2022-01-3 Show GitHub Exploit DB Packet Storm
195287 8.8 HIGH
Adjacent 		dlink dir-2640-us_firmware Quagga Services on D-Link DIR-2640 less than or equal to version 1.11B02 use default hard-coded credentials, which can allow a remote attacker to gain administrative access to the zebra or ripd those… CWE-798
 Use of Hard-coded Credentials 		CVE-2021-20132 2024-11-21 14:45 2021-12-31 Show GitHub Exploit DB Packet Storm
195288 8.4 HIGH
Adjacent 		dlink dir-2640-us_firmware Quagga Services on D-Link DIR-2640 less than or equal to version 1.11B02 are affected by an absolute path traversal vulnerability that allows a remote, authenticated attacker to set an arbitrary file… CWE-22
Path Traversal 		CVE-2021-20134 2024-11-21 14:45 2021-12-31 Show GitHub Exploit DB Packet Storm
195289 6.1 MEDIUM
Adjacent 		dlink dir-2640-us_firmware Quagga Services on D-Link DIR-2640 less than or equal to version 1.11B02 are affected by an absolute path traversal vulnerability that allows a remote, authenticated attacker to set the "message of t… CWE-22
Path Traversal 		CVE-2021-20133 2024-11-21 14:45 2021-12-31 Show GitHub Exploit DB Packet Storm
195290 7.5 HIGH
Network 		sonicwall sma_100_firmware
sma_200_firmware
sma_210_firmware
sma_400_firmware
sma_410_firmware
sma_500v_firmware 		An Improper Access Control Vulnerability in the SMA100 series leads to multiple restricted management APIs being accessible without a user login, potentially exposing configuration meta-data. NVD-CWE-Other
CVE-2021-20050 2024-11-21 14:45 2021-12-23 Show GitHub Exploit DB Packet Storm